Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digium asterisk 13.10.0 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2016-7550
asterisk 13.10.0 is affected by: denial of service issues in asterisk. The impact is: cause a denial of service (remote).
Digium Asterisk 13.10.0
445
VMScore
CVE-2017-14603
In Asterisk 11.x prior to 11.25.3, 13.x prior to 13.17.2, and 14.x prior to 14.6.2 and Certified Asterisk 11.x prior to 11.6-cert18 and 13.x prior to 13.13-cert6, insufficient RTCP packet validation could allow reading stale buffer contents and when combined with the "nat&qu...
Digium Asterisk 13.0.2
Digium Asterisk 13.1.0
Digium Asterisk 13.1.1
Digium Asterisk 13.7.1
Digium Asterisk 13.7.2
Digium Asterisk 13.8.0
Digium Asterisk 13.13
Digium Asterisk 13.13.0
Digium Asterisk 13.13.1
Digium Asterisk 13.14.0
Digium Asterisk 13.0.0
Digium Asterisk 13.3.2
Digium Asterisk 13.4.0
Digium Asterisk 13.5.0
Digium Asterisk 13.10.0
Digium Asterisk 13.11.0
Digium Asterisk 13.11.1
Digium Asterisk 13.11.2
Digium Asterisk 13.15.0
Digium Asterisk 13.0.1
Digium Asterisk 13.2.0
Digium Asterisk 13.3.0
445
VMScore
CVE-2017-14099
In res/res_rtp_asterisk.c in Asterisk 11.x prior to 11.25.2, 13.x prior to 13.17.1, and 14.x prior to 14.6.1 and Certified Asterisk 11.x prior to 11.6-cert17 and 13.x prior to 13.13-cert5, unauthorized data disclosure (media takeover in the RTP stack) is possible with careful tim...
Digium Asterisk 13.16.0
Digium Asterisk 13.14.0
Digium Asterisk 13.0.1
Digium Asterisk 13.0.2
Digium Asterisk 13.1.0
Digium Asterisk 13.3.0
Digium Asterisk 13.3.2
Digium Asterisk 13.7.0
Digium Asterisk 13.7.1
Digium Asterisk 13.10.0
Digium Asterisk 13.12.2
Digium Asterisk 13.13
Digium Asterisk 13.17.0
Digium Asterisk 13.15.0
Digium Asterisk 13.0.0
Digium Asterisk 13.2.0
Digium Asterisk 13.2.1
Digium Asterisk 13.6.0
Digium Asterisk 13.8.2
Digium Asterisk 13.9.0
Digium Asterisk 13.9.1
Digium Asterisk 13.12.0
668
VMScore
CVE-2017-14100
In Asterisk 11.x prior to 11.25.2, 13.x prior to 13.17.1, and 14.x prior to 14.6.1 and Certified Asterisk 11.x prior to 11.6-cert17 and 13.x prior to 13.13-cert5, unauthorized command execution is possible. The app_minivm module has an "externnotify" program configurati...
Digium Asterisk 13.15.0
Digium Asterisk 13.13.1
Digium Asterisk 13.0.0
Digium Asterisk 13.1.0
Digium Asterisk 13.4.0
Digium Asterisk 13.5.0
Digium Asterisk 13.8.0
Digium Asterisk 13.11.0
Digium Asterisk 13.11.1
Digium Asterisk 13.16.0
Digium Asterisk 13.15.1
Digium Asterisk 13.14.0
Digium Asterisk 13.0.2
Digium Asterisk 13.3.2
Digium Asterisk 13.7.1
Digium Asterisk 13.7.2
Digium Asterisk 13.10.0
Digium Asterisk 13.13
Digium Asterisk 13.13.0
Digium Asterisk 13.17.0
Digium Asterisk 13.0.1
Digium Asterisk 13.2.0
445
VMScore
CVE-2017-14098
In the pjsip channel driver (res_pjsip) in Asterisk 13.x prior to 13.17.1 and 14.x prior to 14.6.1, a carefully crafted tel URI in a From, To, or Contact header could cause Asterisk to crash.
Digium Asterisk 13.16.0
Digium Asterisk 13.15.0
Digium Asterisk 13.14.0
Digium Asterisk 13.0.0
Digium Asterisk 13.0.2
Digium Asterisk 13.1.0
Digium Asterisk 13.3.2
Digium Asterisk 13.4.0
Digium Asterisk 13.7.2
Digium Asterisk 13.8.0
Digium Asterisk 13.10.0
Digium Asterisk 13.11.0
Digium Asterisk 13.13
Digium Asterisk 13.14.1
Digium Asterisk 13.1.1
Digium Asterisk 13.2.0
Digium Asterisk 13.2.1
Digium Asterisk 13.3.0
Digium Asterisk 13.8.1
Digium Asterisk 13.8.2
Digium Asterisk 13.9.0
Digium Asterisk 13.9.1
445
VMScore
CVE-2017-9372
PJSIP, as used in Asterisk Open Source 13.x prior to 13.15.1 and 14.x prior to 14.4.1, Certified Asterisk 13.13 prior to 13.13-cert4, and other products, allows remote malicious users to cause a denial of service (buffer overflow and application crash) via a SIP packet with a cra...
Digium Open Source 13.1.0
Digium Open Source 13.5.0
Digium Open Source 13.6.0
Digium Open Source 13.9.0
Digium Open Source 13.14.0
Digium Open Source 13.15.0
Digium Open Source 13.0.0
Digium Open Source 13.4.0
Digium Open Source 13.8.1
Digium Open Source 13.8.2
Digium Open Source 13.12.2
Digium Open Source 13.13.0
Digium Open Source 13.3.0
Digium Open Source 13.8.0
Digium Open Source 13.12.0
Digium Open Source 13.12.1
Digium Open Source 13.2.0
Digium Open Source 13.7.0
Digium Open Source 13.10.0
Digium Open Source 13.11.0
Digium Open Source 14.0.0
Digium Open Source 14.2.1
445
VMScore
CVE-2017-9359
The multi-part body parser in PJSIP, as used in Asterisk Open Source 13.x prior to 13.15.1 and 14.x prior to 14.4.1, Certified Asterisk 13.13 prior to 13.13-cert4, and other products, allows remote malicious users to cause a denial of service (out-of-bounds read and application c...
Digium Open Source 13.7.0
Digium Open Source 13.10.0
Digium Open Source 13.11.0
Digium Open Source 13.15.0
Digium Open Source 14.2.0
Digium Open Source 13.2.0
Digium Open Source 13.3.0
Digium Open Source 13.5.0
Digium Open Source 13.8.1
Digium Open Source 13.8.2
Digium Open Source 13.12.1
Digium Open Source 13.12.2
Digium Open Source 13.1.0
Digium Open Source 13.6.0
Digium Open Source 13.9.0
Digium Open Source 13.13.0
Digium Open Source 13.14.0
Digium Open Source 13.8.0
Digium Open Source 13.12.0
Digium Open Source 13.0.0
Digium Open Source 13.4.0
Digium Certified Asterisk 13.13.0
445
VMScore
CVE-2016-7551
chain_sip in Asterisk Open Source 11.x prior to 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 prior to 11.6-cert15 and 13.8 prior to 13.8-cert3 allows remote malicious users to cause a denial of service (port exhaustion).
Digium Asterisk 11.0.0
Digium Asterisk 11.0.1
Digium Asterisk 11.0.2
Digium Asterisk 11.1.0
Digium Asterisk 11.6.0
Digium Asterisk 11.6.1
Digium Asterisk 11.7.0
Digium Asterisk 11.8.0
Digium Asterisk 11.15.0
Digium Asterisk 11.15.1
Digium Asterisk 11.16.0
Digium Asterisk 11.17.0
Digium Asterisk 13.0.0
Digium Asterisk 13.0.1
Digium Asterisk 13.7.2
Digium Asterisk 13.8.0
Digium Asterisk 13.8.1
Digium Asterisk 11.1.1
Digium Asterisk 11.3.0
Digium Asterisk 11.5.0
Digium Asterisk 11.9.0
Digium Asterisk 11.10.1
578
VMScore
CVE-2017-7617
Remote code execution can occur in Asterisk Open Source 13.x prior to 13.14.1 and 14.x prior to 14.3.1 and Certified Asterisk 13.13 prior to 13.13-cert3 because of a buffer overflow in a CDR user field, related to X-ClientCode in chan_sip, the CDR dialplan function, and the AMI M...
Digium Asterisk 14.3.0
Digium Asterisk 13.10.0
Digium Asterisk 14.0
Digium Asterisk 14.0.0
Digium Asterisk 13.11.0
Digium Asterisk 13.11.1
Digium Asterisk 13.11.2
Digium Asterisk 13.5.0
Digium Asterisk 13.6.0
Digium Asterisk 13.7.0
Digium Asterisk 13.0.0
Digium Asterisk 13.0.1
Digium Asterisk 13.0.2
Digium Asterisk 14.0.2
Digium Asterisk 14.01
Digium Asterisk 14.02
Digium Asterisk 14.1
Digium Asterisk 14.1.0
Digium Asterisk 13.13
Digium Asterisk 13.13.0
Digium Asterisk 13.2.0
Digium Asterisk 13.8.0
445
VMScore
CVE-2016-9938
An issue exists in Asterisk Open Source 11.x prior to 11.25.1, 13.x prior to 13.13.1, and 14.x prior to 14.2.1 and Certified Asterisk 11.x prior to 11.6-cert16 and 13.x prior to 13.8-cert4. The chan_sip channel driver has a liberal definition for whitespace when attempting to str...
Digium Asterisk 11.0.0
Digium Asterisk 11.0.1
Digium Asterisk 11.10.0
Digium Asterisk 11.10.1
Digium Asterisk 11.14.1
Digium Asterisk 11.14.2
Digium Asterisk 11.19.0
Digium Asterisk 11.2.0
Digium Asterisk 11.21.1
Digium Asterisk 11.1.0
Digium Asterisk 11.12.0
Digium Asterisk 11.12.1
Digium Asterisk 11.16.0
Digium Asterisk 11.17.0
Digium Asterisk 11.2.1
Digium Asterisk 11.2.2
Digium Asterisk 11.23.0
Digium Asterisk 11.23.1
Digium Asterisk 11.5.1
Digium Asterisk 11.6.0
Digium Asterisk 13.0.0
Digium Asterisk 13.11.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started